Head of Security & Business AI Applications
Anrok
Software Engineering, IT, Data Science
San Francisco, CA, USA
Location
San Francisco
Employment Type
Full time
Department
Engineering, Product, and Design
Anrok is the leading tax automation platform enabling businesses to expand globally without compliance complexity.
As the digital economy has grown 6x over the last decade, software businesses have gone from not worrying about sales tax to needing to monitor exposure, calculate rates, and file returns across 20+ US states and many countries worldwide. This creates a critical bottleneck for companies that should be able to transact with customers everywhere.
Anrok eliminates this complexity by connecting with billing and payment systems to automate tax monitoring, calculations, and filing end-to-end. Our unified platform handles the ever-changing maze of tax laws at municipal, state, and federal levels—so companies can focus on growth, not compliance.
Our customers include:
40% of Forbes Top 50 AI companies
20% of Forbes Top 100 Cloud companies
Top companies like Notion, Anthropic, and Cursor
We’re making compliant digital commerce a reality for companies big and small, backed by over $100M from leading investors including Spark Capital, Sequoia, Index, and Khosla Ventures.
We’re looking for an experienced technology leader to own and evolve Anrok’s internal technology infrastructure as we scale. As our first Head of Security & Business AI Applications, you’ll be the single owner of corporate IT, application security, compliance obligations, and AI-powered internal tooling—building the systems that let a rapidly growing team operate securely and efficiently. This is a high-impact role reporting to our COO, with direct influence over how Anrok runs as a company.
In this role, you will
Build the infrastructure to support teams building AI-powered internal tools and infrastructure, deploying LLM-based automations, internal copilots, and agentic workflows to improve how Anrok operates at scale
Lead Anrok’s application security program, partnering with engineering to identify risks, drive secure development practices, and protect sensitive customer financial data
Own corporate IT infrastructure and operations—including endpoint management, SaaS stack administration, and IT support—managing and developing our IT team member
Own all compliance obligations end-to-end, including SOC 2 Type II, ISO 27001, and GDPR—serving as the DRI for audits, renewals, and cross-functional readiness
Develop and enforce security policies, access controls, and governance frameworks that grow with the business
Partner with Legal and Finance on data privacy obligations, vendor risk management, and third-party security assessments
Evaluate, procure, and manage the internal technology stack, ensuring we’re using the right tools as we scale
Report on security and compliance posture to executive leadership as needed
What excites us
10+ years in IT, security, or a related technical role, with 3+ years in a leadership position at a scaling tech company
Hands-on experience building or deploying AI/LLM-powered internal tools or automations—you default to AI-first solutions for operational problems
Strong application security fundamentals—you can review AppSec findings, work with engineers on remediations, and evaluate risk without needing to write the code yourself
Genuine familiarity with GDPR and international data privacy obligations, relevant to a fintech handling customer financial data across jurisdictions
Track record of building lightweight but durable compliance and governance programs—practical, not checkbox theater
Proven ownership of SOC 2 Type II renewals end-to-end—you’ve been the DRI, not just a contributor
Technically credible with strong business fluency: you can present to a board, negotiate a vendor contract, and review a penetration test in the same week
Self-starter who thrives in ambiguity, builds scalable systems, and knows when to automate vs. hire
What we offer
The equity upside of an early-stage startup with the product-market fit of a later-stage company.
Daily lunch and snacks for those working out of our office hubs.
Medical, dental, and vision insurance covered 100%.
One Medical membership covered, flexible sick benefits, and more.
Annual learning and development stipend for books, online courses, and conferences, as well as a curious team to share your learnings with.
Home internet reimbursement stipend.
Wellness reimbursement program.
Annual team off-sites and in-person opportunities around our growing Anrok hubs.
Home office setup stipend to ensure you have the equipment you need to thrive at work.
At Anrok, we embrace a dynamic and flexible hybrid work environment based out of our growing office hubs - San Francisco, New York City, Salt Lake City, and Dublin where we collaborate in-person 3 days per week.
Please be aware, job-seekers may be at risk of targeting by malicious actors looking for personal data. Anrok recruiters will only reach out via LinkedIn or email with an anrok.com domain. Any outreach claiming to be from Anrok via other sources should be ignored.